NSX-V Edge Route-Based VPN

Route-Based VPN on an NSX-V Edge: Part 1 - Introduction

(about 7 minutes reading time)
Route-Based VPN on an NSX-V Edge: Part 1 - Introduction

With the introduction of NSX-T as the Software Defined Network (SDN) layer in VMware Cloud on AWS (“VMC”) we gained the ability to create both traditional “Policy-Based” and the less common but arguably more powerful, “Route-Based” VPNs. Although some planning and design is necessary for either type of VPN between VMC sites, the actual configuration is quite straight forward. Fill in the fields on the SDDC console, click “Save”, repeat for the other site and you're done. However, if the “other” site is not a VMC SDDC but instead an “on-prem” location running NSX-V, and you're setting up a route-based VPN, things get a little more complicated. In this post we'll look at the differences between the two VPN types, and in the second post in the series we'll go through the steps necessary to set up a route-based VPN on an NSX-V Edge Service Gateway (“Edge”).